CVE-2007-2343

CVE-2007-2343

EPSS 4.0%

Stack-based buffer overflow in the TFTPD component in Enterasys NetSight Console 2.1 and NetSight Inventory Manager 2.1, and possibly earlier, allows remote attackers to execute arbitrary code via crafted request packets that contain long file names.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=506 http://osvdb.org/34627 http://secunia.com/advisories/24764 http://www.enterasys.com/pub/NetSight/Patches/SP1/NetSight_SP1.pdf http://www.securitytracker.com/id?1017876 http://www.vupen.com/english/advisories/2007/1271